Vulnerability Details CVE-2019-5252
There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.7%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 3.6
References
Products affected by CVE-2019-5252
-
cpe:2.3:h:huawei:enjoy_8_plus:-
-
cpe:2.3:h:huawei:honor_8x:-
-
cpe:2.3:h:huawei:honor_9_lite:-
-
cpe:2.3:h:huawei:honor_9i:-
-
cpe:2.3:h:huawei:y6_pro:-
-
cpe:2.3:h:huawei:y9:-
-
cpe:2.3:o:huawei:enjoy_8_plus_firmware:-
-
cpe:2.3:o:huawei:honor_8x_firmware:-
-
cpe:2.3:o:huawei:honor_8x_firmware:9.1.0.217(c00e15r3p2t8)
-
cpe:2.3:o:huawei:honor_8x_firmware:9.1.0.221(c461e2r1p1t8)
-
cpe:2.3:o:huawei:honor_8x_firmware:9.1.0.237(c432e1r3p2t8)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:-
-
cpe:2.3:o:huawei:honor_9_lite_firmware:8.0.0.126
-
cpe:2.3:o:huawei:honor_9_lite_firmware:8.0.0.127(c185)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:8.0.0.131
-
cpe:2.3:o:huawei:honor_9_lite_firmware:8.0.0.170(c675cust675d1)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:8.0.0.171
-
cpe:2.3:o:huawei:honor_9_lite_firmware:9.1.0.113(c00e111r2p10t8)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:9.1.0.118(c185e4r1p4t8)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:9.1.0.118(c636e4r1p1t8)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:9.1.0.121(c432e4r1p3t8)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:9.1.0.124(c00e112r2p10t8)
-
cpe:2.3:o:huawei:honor_9_lite_firmware:9.1.0.130(c00e112r2p10t8)
-
cpe:2.3:o:huawei:honor_9i_firmware:-
-
cpe:2.3:o:huawei:honor_9i_firmware:9.1.0.106(sp53c636e2r1p4t8)
-
cpe:2.3:o:huawei:honor_9i_firmware:9.1.0.115(c00e113r1p6t8)
-
cpe:2.3:o:huawei:honor_9i_firmware:9.1.0.120(c00e113r1p6t8)
-
cpe:2.3:o:huawei:honor_9i_firmware:9.1.0.121(c432e4r1p3t8)
-
cpe:2.3:o:huawei:y6_pro_firmware:-
-
cpe:2.3:o:huawei:y9_firmware:-